{"id":677,"date":"2018-05-22T08:18:59","date_gmt":"2018-05-22T07:18:59","guid":{"rendered":"https:\/\/cybersecurity.bournemouth.ac.uk\/?p=677"},"modified":"2018-05-22T08:18:59","modified_gmt":"2018-05-22T07:18:59","slug":"bucsr-research-helping-charities-achieving-sustainable-privacy-by-design","status":"publish","type":"post","link":"https:\/\/cybersecurity.bournemouth.ac.uk\/?p=677","title":{"rendered":"BUCSR research helping charities achieving sustainable privacy by design"},"content":{"rendered":"<div id=\"attachment_678\" style=\"width: 560px\" class=\"wp-caption aligncenter\"><a href=\"https:\/\/cybersecurity.bournemouth.ac.uk\/wp-content\/uploads\/2018\/05\/carl-heyerdahl-181868-unsplash.jpg\"><img loading=\"lazy\" decoding=\"async\" aria-describedby=\"caption-attachment-678\" class=\"size-large wp-image-678\" src=\"https:\/\/cybersecurity.bournemouth.ac.uk\/wp-content\/uploads\/2018\/05\/carl-heyerdahl-181868-unsplash-1024x683.jpg\" alt=\"\" width=\"550\" height=\"367\" srcset=\"https:\/\/cybersecurity.bournemouth.ac.uk\/wp-content\/uploads\/2018\/05\/carl-heyerdahl-181868-unsplash-1024x683.jpg 1024w, https:\/\/cybersecurity.bournemouth.ac.uk\/wp-content\/uploads\/2018\/05\/carl-heyerdahl-181868-unsplash-300x200.jpg 300w, https:\/\/cybersecurity.bournemouth.ac.uk\/wp-content\/uploads\/2018\/05\/carl-heyerdahl-181868-unsplash-768x512.jpg 768w\" sizes=\"(max-width: 550px) 100vw, 550px\" \/><\/a><p id=\"caption-attachment-678\" class=\"wp-caption-text\">Photo by Carl Heyerdahl on Unsplash<\/p><\/div>\n<p>In November 2017, we were awarded funding through RKEO&#8217;s Charity Impact Acceleration fund to work help a local charity &#8212; <a href=\"https:\/\/www.streetscene.org.uk\/\">StreetScene<\/a>\u00a0&#8212; prepare them for the new<a href=\"https:\/\/ico.org.uk\/for-organisations\/guide-to-the-general-data-protection-regulation-gdpr\/\">General Data Protection Regulation (GDPR)<\/a>. At the time, many charities were well aware of what GDPR was and the penalties for non-compliance. However, the <a href=\"https:\/\/ico.org.uk\/for-organisations\/charity\/\">guidance made available to them by the ICO<\/a>\u00a0was general and costly to implement in terms of time and resources. Our thoughts summarising the dilemmas faced by charities facing GDPR were recently covered by <a href=\"https:\/\/theconversation.com\/small-charities-face-bankruptcy-for-not-complying-with-gdpr-but-put-clients-at-risk-if-they-do-95463\">The Conversation<\/a>.<\/p>\n<p>Using work from her doctoral research, <a href=\"https:\/\/staffprofiles.bournemouth.ac.uk\/display\/jhenriksenbulmer\">Jane Henriksen-Bulmer<\/a>\u00a0has devised a customised Data Protection Impact Assessment (DPIA) process for charities, which she is now putting into practice at StreetScene. \u00a0This helps them evaluate how privacy impacts their business workflows, and the privacy risks they face.<\/p>\n<p>To help other charities benefit from this work, we will be running a free <a href=\"https:\/\/www.eventbrite.co.uk\/e\/gdpr-for-charities-how-to-conduct-a-dpia-tickets-45476422203\">GDPR for Charities workshop<\/a>\u00a0on June 11th at the EBC. The workshop will share the results of this work with around 50 participants who work for or with local charities, and provide hands-on training on the process and complementary design techniques and <a href=\"https:\/\/cybersecurity.bournemouth.ac.uk\/?page_id=62\">software tools<\/a>\u00a0that charities can put into immediate practice. We&#8217;ll also be running a panel with invited speakers to discuss the challenges that small charities face with GDPR.<\/p>\n<p>Although this work is helping local charities, we hope our work leads to more debate on how everyone (and not just big business) can &#8216;build in&#8217; sustainable security and privacy.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>In November 2017, we were awarded funding through RKEO&#8217;s Charity Impact Acceleration fund to work help a local charity &#8212; StreetScene\u00a0&#8212; prepare them for the newGeneral Data Protection Regulation (GDPR). At the time, many charities were well aware of what GDPR was and the penalties for non-compliance. However, the guidance made available to them by [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":678,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"inline_featured_image":false,"_exactmetrics_skip_tracking":false,"_exactmetrics_sitenote_active":false,"_exactmetrics_sitenote_note":"","_exactmetrics_sitenote_category":0,"footnotes":""},"categories":[8],"tags":[],"_links":{"self":[{"href":"https:\/\/cybersecurity.bournemouth.ac.uk\/index.php?rest_route=\/wp\/v2\/posts\/677"}],"collection":[{"href":"https:\/\/cybersecurity.bournemouth.ac.uk\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/cybersecurity.bournemouth.ac.uk\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/cybersecurity.bournemouth.ac.uk\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/cybersecurity.bournemouth.ac.uk\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=677"}],"version-history":[{"count":2,"href":"https:\/\/cybersecurity.bournemouth.ac.uk\/index.php?rest_route=\/wp\/v2\/posts\/677\/revisions"}],"predecessor-version":[{"id":841,"href":"https:\/\/cybersecurity.bournemouth.ac.uk\/index.php?rest_route=\/wp\/v2\/posts\/677\/revisions\/841"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/cybersecurity.bournemouth.ac.uk\/index.php?rest_route=\/wp\/v2\/media\/678"}],"wp:attachment":[{"href":"https:\/\/cybersecurity.bournemouth.ac.uk\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=677"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/cybersecurity.bournemouth.ac.uk\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=677"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/cybersecurity.bournemouth.ac.uk\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=677"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}